CVE-2020-36783

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a reference leak in the Linux kernel's i2c component, specifically in the img-scb driver. The problem occurs when the pm runtime get sync function fails, causing the PM reference count to be incremented even though the operation failed. This can result in a reference leak. The functions img i2c xfer and img i2c init are affected. To fix the issue, the pm runtime get sync function should be replaced with pm runtime resume and get to keep the usage counter balanced.

Recommendations Replace pm runtime get sync with pm runtime resume and get in the affected functions img i2c xfer and img i2c init to prevent the reference leak. As a temporary workaround, consider disabling the img i2c xfer and img i2c init functions until a patch is available.